EZproxy Hosted Service Don Hamparian OCLC October 2012

Today’s Discussion Identity Management What is it? Why is it important? Challenges Services Today and in the Future Introduction to EZproxy – what can it do for my library? EZproxy Standalone EZproxy Hosting Service Q&A and Discussion Image from Flickr, NET-BUSINESSNET-BUSINESS

Identity Management Related to E-content Access Identity Management is the management of data about people and institutions to provide authentication, authorization, and personalization services. Authentication: proving who you are Authorization: determining what rights you have for resources and services IP Authentication: granting access to a service because the service recognizes the requestors IP address

IP Authentication – in the library Library Network Content Provider Discover Item Request full text copy pc.mylib.org Check IP address of requestor: pc.mylib.org content.com Library has registered its IP addresses Address found – authenticated – return content

IP Authentication – outside the library Library Network – mylib.org Content Provider Discover Item Request full text copy pc.myhouse.com Check address of requestor content.com Library has registered its IP addresses pc.myhouse.com not found request rejected

IP Authentication – outside the library with EZproxy Discover Item Request full text copy Library Network – mylib.org pc.myhouse.com Check address of requestor Content Provider content.com Library has registered its IP addresses and the EZproxy address ezmylib.idm.oclc.org found – return content Authenticate to EZproxy EZproxy Server – ezmylib.idm.oclc.org EZproxy sends request to content.com Content.com returns content to ezmylib.idm.oclc.org EZproxy returns content to pc.myhouse.com

EZproxy – Benefits for my library Lower barriers of access to content and services Remote users access IP-authenticated content via a large variety of authentication connectors Transparent to users – no changes to browser or PC configurations Accomplished in a secure way Pretty sophisticated ‘language’ for authentication / authorization operations Can be as simple or as complex as you desire

EZproxy Deployed at the Library The existing option of installing EZproxy at your library is unchanged -Pricing - unchanged -Support - unchanged -Functionality – unchanged

EZproxy Deployed at the Library Costs Often Hidden -Expertise -Server Management -Network Configuration -Monitoring -Backup and Recovery -Security This model works for some institutions but not all

EZproxy hosted service We manage and run: -Server -Security environment -Monitoring systems 7x24 -EZproxy configuration -Network configuration -Backup and Recovery Introduced in December 2010

Why We Introduced the EZproxy hosting service E-content as part of the collection growing Different management paradigm needed Help Libraries bridge the Digital Divide Many barriers to manage and deliver access to e-content EZproxy one of the fundamental building blocks for E-content management Part of our suite of services for E-content management

The Big Picture – Where are we heading? Integrated E-Content Lifecycle Management (KB, License Mgt) -Subscribe -Provide Access -Authenticate -Provide Usage Reporting Integrate with Cooperative Platform

EZproxy V5.6.1 and V5.6.3 Released April Significant number of bug fixes: -Shibboleth -Athens -Start/stop / Crashes - Admin -EZproxy Survey V5.6.3 – coming soon A few fixes

EZproxy - Future Future -IPV6 -More SAML interaction with content providers -New Compile/build process -Mobile-compliant HTML templates -License Manager integration -Need Beta testers!!

Initial Configuration - Startup New – Starting with no configuration files Up to 10 hours configuration time for new site setup Additional configuration time charged at hourly rate Advice is to start with simple configuration and grow it over time Ongoing support included as part of yearly subscription Institution supply starting point URLs and journal titles Determine authentication method Institution: Customize html – login, logout, login failure etc

Initial Configuration - Startup Existing Local EZproxy moving to Hosting Service Use existing configuration files Most everything migrates easily Update with standard logging, security, port settings Resolve any firewall/access issues with authentication method

Initial Configuration - Startup Questionnaire filled out by EZproxy Hosted Institution Phone conversation to ask questions/resolve issues Delivery Date commitment from OCLC Our Goal is a four week turnaround from receive order to first version for institution test Docs to read: Service Expectations Legal T&Cs

Pricing Yearly Subscription Based on FTE or Community Served First Year: Range from $1500 to $2900 Year 2 and following: Range from $1250 to $2650

Ongoing Services – We Provide: 7x24x365 -EZproxy, Server, Network Monitoring -Complete Outage – Server or Network -Bandwidth consumption monitoring -Phone number for institution administrators to report problems

Ongoing Services – We Provide: Business Hours (Eastern USA) Customer Support Service Business Hours (Eastern USA) – 24 hour turn-around Minor Configuration Changes Add a supported resource Business Hours (Eastern USA) Add an unsupported resource

Ongoing Services – We Provide: Log file upload to institution Can use patron data server to pick up log files Updating the database configurations Today: send with request to And/Or Request dump of config (zip file) Drop off config on the patron data server

Updating the Configuration Updating users and passwords on the hosting server Today: use our secure upload server Changes deployed into the hosting environment within 1 hour Request account and access for this feature

Technical Information -EZproxy Deployed onto Linux VM servers -Our data center has over 2,200 VMs deployed to date -Full diesel and battery backup ; two commercial power feeds -7x24x365 monitoring -Deployed with current release

Technical Information Access Institution Admins do not have telnet access Institution Admins can request EZproxy Admin rights for monitoring EZproxy DNS name is.idm.oclc.org Moving from institution EZproxy server to Hosted Service usually requires minor institution web/OPAC changes We supply security certificate

Pioneer Library System (OK) Missoula Public Library (MT) U S Army Corps of Engineering Pacifica Graduate Institute University of Loyola, New Orleans Pilot Participants

165 Institutions in configuration or production A variety: publics, academics, large and small EMEA Hosting service announcement eminent Current Status

Don Hamparian, Product Manager Mario McMichael, Product Support Specialist EZproxy Product Team Support Team: Web Site: Authentication Connectors: Supported Database List: Contacts

Discussion / Questions